Several security issues were discovered in the WebKitGTK Web and JavaScript
engines. If a user were tricked into viewing a malicious website, a remote
attacker could exploit a variety of issues related to web browser security,
including cross-site scripting attacks, denial of service attacks, and
arbitrary code execution.
Category Archives: Advisories
USN-5796-1: w3m vulnerability
It was discovered that w3m incorrectly handled certain HTML files. A remote
attacker could use this issue to cause w3m to crash, resulting in a denial
of service, or possibly execute arbitrary code.
USN-5795-1: Net-SNMP vulnerabilities
It was discovered that Net-SNMP incorrectly handled certain requests. A
remote attacker could possibly use these issues to cause Net-SNMP to crash,
resulting in a denial of service.
vim-9.0.1160-1.fc36
FEDORA-2023-208f2107d5
Packages in this update:
vim-9.0.1160-1.fc36
Update description:
Security fix for CVE-2023-0049
vim-9.0.1160-1.fc37
FEDORA-2023-0f6a9433cf
Packages in this update:
vim-9.0.1160-1.fc37
Update description:
Security fix for CVE-2023-0049
USN-5787-2: Libksba vulnerability
USN-5787-1 fixed vulnerabilities in Libksba. This update provides the
corresponding updates for Ubuntu 16.04 ESM and Ubuntu 14.04 ESM.
Original advisory details:
It was discovered that Libksba incorrectly handled parsing CRL signatures.
A remote attacker could use this issue to cause Libksba to crash, resulting
in a denial of service, or possibly execute arbitrary code.
nautilus-42.6-1.fc36
FEDORA-2023-f81ad89b81
Packages in this update:
nautilus-42.6-1.fc36
Update description:
Update to 42.6
CVE-2010-10004
A vulnerability was found in Information Cards Module and classified as problematic. This issue affects some unknown processing. The manipulation leads to cross site scripting. The attack may be initiated remotely. Upgrading to version 1.0 is able to address this issue. The name of the patch is f6bfea49ae16dc6e179df8306d39c3694f1ef186. It is recommended to upgrade the affected component. The identifier VDB-217661 was assigned to this vulnerability.
nautilus-43.2-1.fc37
FEDORA-2023-dbe1157188
Packages in this update:
nautilus-43.2-1.fc37
Update description:
Update to 43.2
CVE-2014-125068 (maps-js-icoads)
A vulnerability was found in saxman maps-js-icoads and classified as critical. This issue affects some unknown processing of the file http-server.js. The manipulation leads to path traversal. The name of the patch is 34b8b0cce2807b119f4cffda2ac48fc8f427d69a. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-217643.